syn fin software vulnerabilities
vulnerabilities.aspcode.net
Searching syn fin software vulnerabilities
Denial of service of inetd on Linux through SYN
packets
|
through
|
service
|
Denial
|
inetd
|
Linux
|
RST
|
SYN
|
Denial of service of inetd on Linux through SYN and RST packets.
Some filters or firewalls allow fragmented SYN
implemented
|
fragmented
|
firewalls
|
violation
|
reserved
|
packets
|
filters
|
policy
|
their
|
allow
|
Some
|
bits
|
SYN
|
Some filters or firewalls allow fragmented SYN packets with IP reserved bits in violation of their implemented policy.
An attacker can identify a CISCO device by send
identify
|
attacker
|
sending
|
packet
|
device
|
CISCO
|
port
|
can
|
SYN
|
An attacker can identify a CISCO device by sending a SYN packet to port 1999, which is for the Cisco Discovery Protocol (CDP).
FORE PowerHub before 5.0.1 allows remote attack
PowerHub
|
before
|
FORE
|
FORE PowerHub before 5.0.1 allows remote attackers to cause a denial of service (hang) via a TCP SYN scan with TCP/IP OS fingerprinting, e.g. via nmap.
ISS RealSecure 3.2.1 and 3.2.2 allows remote at
RealSecure
|
ISS
|
ISS RealSecure 3.2.1 and 3.2.2 allows remote attackers to cause a denial of service via a flood of fragmented packets with the SYN flag set.
Marconi ASX-1000 ASX switches allow remote atta
attributes
|
interfaces
|
management
|
attackers
|
malformed
|
Fragments
|
ASX-1000
|
switches
|
service
|
Marconi
|
SYN-FIN
|
packet
|
remote
|
denial
|
telnet
|
allow
|
cause
|
More
|
ASX
|
set
|
via
|
web
|
Marconi ASX-1000 ASX switches allow remote attackers to cause a denial of service in the telnet and web management interfaces via a malformed packet with the SYN-FIN and More Fragments attributes set.
Windows XP with port 445 open allows remote att
Windows
|
port
|
Windows XP with port 445 open allows remote attackers to cause a denial of service (CPU consumption) via a flood of TCP SYN packets containing possibly malformed data.
The SYN cache (syncache) and SYN cookie (syncoo
cache
|
SYN
|
The SYN cache (syncache) and SYN cookie (syncookie) mechanism in FreeBSD 4.5 and earlier allows remote attackers to cause a denial of service (crash) (1) via a SYN packet that is accepted using syncookies that causes a null pointer to be referenced for the socket's TCP options, or (2) by killing and restarting a process that listens on the same socket, which does not properly clear the old inpcb pointer on restart.
Kerio MailServer 5.0 allows remote attackers to
MailServer
|
attackers
|
service
|
denial
|
allows
|
remote
|
Kerio
|
cause
|
Kerio MailServer 5.0 allows remote attackers to cause a denial of service (hang) via SYN packets to the supported network services.
Microsoft Windows 2000 allows remote attackers
Microsoft
|
Windows
|
Microsoft Windows 2000 allows remote attackers to cause a denial of service (memory consumption) by sending a flood of empty TCP/IP packets with the ACK and FIN bits set to the NetBIOS port (TCP/139), as demonstrated by stream3.
ZoneAlarm Pro 3.0 and 3.1, when configured to b
configured
|
attackers
|
ZoneAlarm
|
traffic
|
service
|
remote
|
allows
|
denial
|
cause
|
block
|
Pro
|
all
|
ZoneAlarm Pro 3.0 and 3.1, when configured to block all traffic, allows remote attackers to cause a denial of service (CPU and memory consumption) via a large number of SYN packets (SYN flood). NOTE: the vendor was not able to reproduce the issue.
Motorola Surfboard 4200 cable modem allows remo
Surfboard
|
Motorola
|
Motorola Surfboard 4200 cable modem allows remote attackers to cause a denial of service (crash) by performing a SYN scan using a tool such as nmap.
Kerio Personal Firewall (KPF) 2.1.4 and earlier
Firewall
|
Personal
|
Kerio
|
Kerio Personal Firewall (KPF) 2.1.4 and earlier allows remote attackers to cause a denial of service (hang and CPU consumption) via a SYN packet flood.
Privacyware Privatefirewall 3.0 does not block
Privatefirewall
|
Privacyware
|
attackers
|
Traffic"
|
Internet
|
identify
|
services
|
incoming
|
certain
|
running
|
packets
|
"Filter
|
remote
|
allows
|
scans
|
block
|
modes
|
which
|
Xmas
|
does
|
Deny
|
not
|
via
|
FIN
|
Privacyware Privatefirewall 3.0 does not block certain incoming packets when in "Filter Internet Traffic" or Deny Internet Traffic" modes, which allows remote attackers to identify running services via FIN scans or Xmas scans.
Efficient Networks 5861 DSL router, when runnin
Efficient
|
Networks
|
Efficient Networks 5861 DSL router, when running firmware 5.3.80 configured to block incoming TCP SYN, packets allows remote attackers to cause a denial of service (crash) via a flood of TCP SYN packets to the WAN interface using a port scanner such as nmap.
Honeyd before 0.8 replies to TCP packets with t
simulated
|
addresses
|
attackers
|
identify
|
packets
|
replies
|
allows
|
remote
|
Honeyd
|
before
|
being
|
flags
|
which
|
SYN
|
TCP
|
set
|
RST
|
Honeyd before 0.8 replies to TCP packets with the SYN and RST flags set, which allows remote attackers to identify IP addresses that are being simulated by Honeyd.
The firewall in Astaro Security Linux before 4.
Security
|
firewall
|
before
|
Astaro
|
Linux
|
The firewall in Astaro Security Linux before 4.024 sends responses to SYN-FIN packets, which makes it easier for remote attackers to obtain information about the system and construct specialized attacks.
The Cisco IP Phone 7940 allows remote attackers
Phone
|
Cisco
|
The Cisco IP Phone 7940 allows remote attackers to cause a denial of service (reboot) via a large amount of TCP SYN packets (syn flood) to arbitrary ports, as demonstrated to port 80.
The DataCollector service in EIQ Networks Netwo
DataCollector
|
attackers
|
Security
|
Analyzer
|
Networks
|
service
|
Network
|
denial
|
remote
|
allows
|
cause
|
EIQ
|
The DataCollector service in EIQ Networks Network Security Analyzer allows remote attackers to cause a denial of service (service crash) via a (1) &CONNECTSERVER& (2) &ADDENTRY& (3) &FIN& (4) &START& (5) &LOGPATH& (6) &FWADELTA& (7) &FWALOG& (8) &SETSYNCHRONOUS& (9) &SETPRGFILE&, or (10) &SETREPLYPORT& string to TCP port 10618, which triggers a NULL pointer dereference.
IBM OS/400 (aka i5/OS) V4R2M0 through V5R3M0 on
OS/400
|
IBM
|
IBM OS/400 (aka i5/OS) V4R2M0 through V5R3M0 on iSeries machines sends responses to TCP SYN-FIN packets, which allows remote attackers to obtain system information and possibly bypass firewall rules.
Software vulnerabilities results 1 to 20 of 45
Page:
1
2
3
►